CVE-2011-3492 - Buffer Errors vulnerability in Azeotech Daqfactory

Publication

2011-09-16

Last modification

2017-08-29

Summary

Stack-based buffer overflow in Azeotech DAQFactory 5.85 build 1853 and earlier allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a crafted NETB packet to UDP port 20034.

Classification

CWE-119 - Buffer Errors

Risk level (CVSS AV:N/AC:L/Au:N/C:C/I:C/A:C)

High

10.0

Access Vector

  • Network
  • Adjacent Network
  • Local

Access Complexity

  • Low
  • Medium
  • High

Authentication

  • None
  • Single
  • Multiple

Confident. Impact

  • Complete
  • Partial
  • None

Integrity Impact

  • Complete
  • Partial
  • None

Affected Products

Vendor Product Versions
Azeotech Daqfactory  3.0 , 5.35 , 5.80 , 5.37 , 5.34 , 5.72 , 4.00 , 5.33 , 4.11 , 3.53 , 5.12 , 3.03 , 5.05 , 5.40 , 5.71 , 5.03 , 5.70 , 5.0 , 5.10 , 5.02 , 3.09 , 5.83 , 5.31 , 4.10 , 3.11 , 5.78 , 5.76 , 5.36 , 3.55 , 5.79 , 5.84 , 5.15 , 5.30 , 5.74 , 3.52 , 5.75 , 3.51 , 5.04 , 5.82 , 5.01 , 3.05 , 5.77 , 5.85 , 3.10 , 5.38 , 5.73 , 5.32 , 5.11 , 5.39